$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197433.roa File: AS197433.roa (raw, json) Hash identifier: kNv6e+y70mWYDQrBdUdEcRVilFSyPHIdXv6Ixj+QB/M= Subject key identifier: 5D:93:BA:BA:2A:E4:32:CD:48:94:35:D6:3C:4F:D4:83:7A:71:C9:85 Certificate issuer: /CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Certificate serial: 043DDD9A301C077239864825F21F5EEEF07361D5 Authority key identifier: 0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197433.roa Signing time: Wed 06 Sep 2023 06:01:47 +0000 ROA not before: Wed 06 Sep 2023 05:56:47 +0000 ROA not after: Wed 04 Sep 2024 06:01:47 +0000 asID: 197433 IP address blocks: 2a05:dfc1:8c00::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 17 May 2024 23:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:3d:dd:9a:30:1c:07:72:39:86:48:25:f2:1f:5e:ee:f0:73:61:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0E357DDA04B8107626124F52CFC2439B76D85AF9 Validity Not Before: Sep 6 05:56:47 2023 GMT Not After : Sep 4 06:01:47 2024 GMT Subject: CN=5D93BABA2AE432CD489435D63C4FD4837A71C985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1c:ff:7f:6e:dd:33:a8:db:b0:e1:13:9e:fc: 76:8f:b2:8e:60:19:a3:7b:8d:3c:09:9f:0f:96:97: 0a:27:d6:26:f6:73:a4:42:06:20:ce:37:a1:58:e8: a2:24:2e:e3:35:ce:e4:0a:61:4c:6c:26:38:4e:e7: aa:d8:1e:71:25:1d:e0:c9:41:32:84:06:47:42:85: ff:52:07:96:c5:31:9b:34:d1:4d:cd:7a:a7:d9:a7: 41:ac:ad:5f:27:2c:40:6d:44:bf:72:65:f9:08:07: 8c:6b:84:7c:26:a3:6a:d1:32:45:f7:d4:79:9a:5b: 39:94:13:81:63:c2:4d:17:b2:41:57:f6:11:6b:c4: a8:16:7f:08:6b:a2:ef:d3:4f:e5:b9:c4:87:3e:61: 9b:0c:a2:c6:30:42:6f:2c:6b:f6:40:9a:5b:32:19: dc:1b:f5:16:31:24:ed:1c:08:a0:73:63:06:77:16: 4c:fc:10:da:b2:fd:d1:63:b4:fa:a8:67:c3:ba:ea: ce:b3:33:d4:98:61:51:21:f3:01:13:74:fc:f3:90: a3:90:fa:44:b5:7c:29:fb:c5:cb:c9:b8:5a:dd:1a: 9f:5e:eb:c9:21:b6:e0:1f:66:79:ab:46:9e:48:c8: 5e:34:89:11:92:36:dc:49:5d:e9:fd:1b:16:b3:57: 40:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:93:BA:BA:2A:E4:32:CD:48:94:35:D6:3C:4F:D4:83:7A:71:C9:85 X509v3 Authority Key Identifier: keyid:0E:35:7D:DA:04:B8:10:76:26:12:4F:52:CF:C2:43:9B:76:D8:5A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/0E357DDA04B8107626124F52CFC2439B76D85AF9.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/0E357DDA04B8107626124F52CFC2439B76D85AF9.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/AS197433.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a05:dfc1:8c00::/40 Signature Algorithm: sha256WithRSAEncryption b6:9f:0b:e4:6f:97:15:01:89:04:b3:0c:69:0b:6e:97:6c:aa: 1b:de:83:c2:e1:26:4c:82:c3:47:a7:a3:b4:85:c9:93:00:62: 42:84:f5:d3:33:ae:8f:8a:f4:e7:85:28:38:60:7d:08:e0:b5: 86:62:03:8e:53:89:56:9b:96:40:bb:40:97:91:64:62:93:32: f4:b6:4c:53:bd:cd:fa:72:db:ca:0f:7b:6f:87:20:98:97:78: a7:4d:79:8f:b6:04:41:f1:79:51:68:ea:6e:21:83:36:9b:7d: cb:bd:50:f0:cc:14:0b:38:9c:c1:9b:e0:da:df:54:70:b0:11: 68:0b:7e:9b:66:7c:b2:75:c5:2f:7e:21:76:b6:1f:35:cc:fe: 7f:77:7b:ba:11:d0:ed:6e:c1:3a:db:c4:fd:04:38:b9:c5:df: e6:35:a4:4a:72:c3:c3:7d:39:33:c3:3f:3c:23:be:4e:a3:64: 1d:59:78:17:4e:10:32:a6:c9:5b:9d:b3:85:46:c0:5c:4a:66: 60:34:90:83:8f:d0:13:eb:10:61:9e:42:bc:7d:13:89:b7:21: 33:bc:ed:41:47:98:10:66:45:8f:f2:c6:6a:9a:eb:77:16:e3: 99:14:ec:46:a2:a9:0c:a7:b9:d5:16:cc:e7:f9:ef:0c:7d:1e: f5:6c:72:86 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUBD3dmjAcB3I5hkgl8h9e7vBzYdUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOTAeFw0yMzA5MDYwNTU2NDdaFw0yNDA5MDQwNjAxNDdaMDMxMTAvBgNV BAMTKDVEOTNCQUJBMkFFNDMyQ0Q0ODk0MzVENjNDNEZENDgzN0E3MUM5ODUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXHP9/bt0zqNuw4ROe/HaPso5g GaN7jTwJnw+Wlwon1ib2c6RCBiDON6FY6KIkLuM1zuQKYUxsJjhO56rYHnElHeDJ QTKEBkdChf9SB5bFMZs00U3NeqfZp0GsrV8nLEBtRL9yZfkIB4xrhHwmo2rRMkX3 1HmaWzmUE4Fjwk0XskFX9hFrxKgWfwhrou/TT+W5xIc+YZsMosYwQm8sa/ZAmlsy Gdwb9RYxJO0cCKBzYwZ3Fkz8ENqy/dFjtPqoZ8O66s6zM9SYYVEh8wETdPzzkKOQ +kS1fCn7xcvJuFrdGp9e68khtuAfZnmrRp5IyF40iRGSNtxJXen9GxazV0BnAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXZO6uirkMs1IlDXWPE/Ug3pxyYUwHwYDVR0j BBgwFoAUDjV92gS4EHYmEk9Sz8JDm3bYWvkwDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzAvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZDMjQzOUI3 NkQ4NUFGOS5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzIvMEUzNTdEREEwNEI4MTA3NjI2MTI0RjUyQ0ZD MjQzOUI3NkQ4NUFGOS5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS8w L0FTMTk3NDMzLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgXfwYwwDQYJKoZIhvcNAQELBQADggEBALaf C+RvlxUBiQSzDGkLbpdsqhveg8LhJkyCw0eno7SFyZMAYkKE9dMzro+K9OeFKDhg fQjgtYZiA45TiVablkC7QJeRZGKTMvS2TFO9zfpy28oPe2+HIJiXeKdNeY+2BEHx eVFo6m4hgzabfcu9UPDMFAs4nMGb4NrfVHCwEWgLfptmfLJ1xS9+IXa2HzXM/n93 e7oR0O1uwTrbxP0EOLnF3+Y1pEpyw8N9OTPDPzwjvk6jZB1ZeBdOEDKmyVuds4VG wFxKZmA0kIOP0BPrEGGeQrx9E4m3ITO87UFHmBBmRY/yxmqa63cW45kU7EaiqQyn udUWzOf57wx9HvVscoY= -----END CERTIFICATE-----Generated at Fri May 17 06:17:21 2024 by rpki-client on console-fra.rpki-client.org